资讯

The Hacker News1 天

Critical CVE-2025-5086 in DELMIA Apriso Actively Exploited, CISA Issues Warning

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a critical security flaw impacting ...

Hackers hide behind Tor in exposed Docker API breaches

A threat actor targeting exposed Docker APIs has updated its malicious tooling with more dangerous functionality that could ...

CISA warns of actively exploited Dassault RCE vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning of hackers exploiting a critical remote code ...
The Hacker News4 天

TOR-Based Cryptojacking Attack Expands Through Misconfigured Docker APIs

The attack chain essentially involves breaking into misconfigured Docker APIs to execute a new container based on the Alpine ...
Security Boulevard5 天

APT37 Targets Windows with Rust Backdoor and Python Loader

IntroductionAPT37 (also known as ScarCruft, Ruby Sleet, and Velvet Chollima) is a North Korean-aligned threat actor active since at least 2012. APT37 primarily targets South Korean individuals ...
CSO Online2 天

Docker malware breaks in through exposed APIs, then changes the locks

The new variant of Docker-targeting malware skips cryptomining in favor of persistence, backdoors, and even blocking rivals ...

ADAMnetworks Reveals Emerging Cybersecurity Threat: Hackers Exploit DNS TXT Records for ...

ADAMnetworks has uncovered a DNS flaw where attackers use TXT records to hide and spread malware to evade traditional ...
WinBuzzer6 天

VirusTotal’s AI Uncovers Year-Long Malware Campaign Hidden in SVG Files

VirusTotal has used its AI Code Insight tool to uncover a year-long malware campaign that hid within SVG files to evade ...